OP is still running 5 containers though? And why does a home server need to implement an IT security standard meant for large organisations? I hope you got an incident response policy written down, would be a shame to fail the next audit.
Public facing services should pantamime security best practices. I recognize its not realistic for most solo-home labs, but you can always improve with practice.
Tell me again why a properly managed container environment (if you wanna go bonkers use Jails on FreeBSD) offers more attack surface than multiple operating systems running the exact same software.
Just randomly mentioning ISO27x tells me exactly that you have absolutely no idea how those standards work.
Heh. Container mafia going “hush, don’t worry about iso27002, just one more pull, bro.”
OP is still running 5 containers though? And why does a home server need to implement an IT security standard meant for large organisations? I hope you got an incident response policy written down, would be a shame to fail the next audit.
Public facing services should pantamime security best practices. I recognize its not realistic for most solo-home labs, but you can always improve with practice.
Tell me again why a properly managed container environment (if you wanna go bonkers use Jails on FreeBSD) offers more attack surface than multiple operating systems running the exact same software.
Just randomly mentioning ISO27x tells me exactly that you have absolutely no idea how those standards work.